Awake Security Threat Research Team has uncovered a massive global surveillance campaign exploiting the nature of Internet domain registration and browser capabilities to spy on and steal data from users. The research shows that this criminal activity is being abetted by a single Internet Domain Registrar: CommuniGal Communication Ltd. (GalComm) By exploiting the trust placed in it as a domain registrar, GalComm has enabled malicious activity that has been found across more than a hundred networks weve examined. The malicious activity has been able to stay hidden by bypassing multiple layers of security controls.”]
Source: https://awakesecurity.com/blog/the-internets-new-arms-dealers-malicious-domain-registrars/